Commits
- Commit:
b5963536c85df0d8aa80df7ce8fd223b5d9d29e6
- From:
- Omar Polo <op@omarpolo.com>
- Date:
change the 'condensed' style to include the size of the request too
will be used in the future to log how much byte a titan request
uploaded.
- Commit:
46bcc4ea95b03fe81ad361ee02bd021a7618e5a9
- From:
- Omar Polo <op@omarpolo.com>
- Date:
add log syslog off; don't turn syslog off when log access is specified
- Commit:
cba01a868748013f838c28ad8005c8377160c76f
- From:
- Omar Polo <op@omarpolo.com>
- Date:
rename IMSG_LOG_TYPE to ACCESS
- Commit:
abd261d25bdfa01c44d07a9803db669bc62ddf76
- From:
- Omar Polo <op@omarpolo.com>
- Date:
allow to change the logging style; introduce some new ones
add `log style <style>'; The old default is called `legacy' now, a
new default format is added called `condensed', and `common' and
`combined' to mimick Apache httpd and nginx (respectively) are also
added.
- Commit:
e075021085c1b1f8d28c35d2f358f7792980b0d1
- From:
- Omar Polo <op@omarpolo.com>
- Date:
still respect `log' when in debug mode
- Commit:
4acf495f41d2c26136e99072293ca8b9bff91dc0
- From:
- Omar Polo <op@omarpolo.com>
- Date:
open the log files inside the chroot
- Commit:
3bda540e3428e7e3a18ee1c54a65c449ca10f35e
- From:
- Omar Polo <op@omarpolo.com>
- Date:
reopen log files upon SIGUSR2
- Commit:
226f13ece0b309abeee0ae8a4d8c9f049fe896a7
- From:
- Omar Polo <op@omarpolo.com>
- Date:
add ability to log to files with log access <path>
- Commit:
2c3810687f0c8b7c14897618c5a3147f949df408
- From:
- Omar Polo <op@omarpolo.com>
- Date:
change log_request to take the code and meta unpacked
don't know what i was smoking when I wrote log_request() like that...
- Commit:
ed164e7221f75d3d7f48351e9427f2ce53ab284a
- From:
- Omar Polo <op@omarpolo.com>
- Date:
call getnameinfo() only once per request
- Commit:
287ab86538ac30413fdbae20234b470b93954386
- From:
- Omar Polo <op@omarpolo.com>
- Date:
default chroot to user' home if unset
- Commit:
509d0509a50883a6f8407b63774f40dd1e41dadf
- From:
- Omar Polo <op@omarpolo.com>
- Date:
implement `listen on'
Listening by default on all the addresses is so bad I don't know
why I haven't changed this before. Anyway.
Add a `listen on $hostname port $port' syntax to the config file
and deprecate the old "port" and "ipv6" global setting. Still try
to honour them when no "listen on" directive is used for backward
compatibily, but this will go away in the next next version hopefully.
At the moment the `listen on' in server context don't filter the
host, i.e. one can still reach a host from a address not specified
in the corresponding `liste on', this will be added later.
- Commit:
37df23d183de23b74f8a026977b8210dc22701a6
- From:
- Omar Polo <op@omarpolo.com>
- Date:
rename client->addr to raddr (remote address) and keep original length
- Commit:
ab55c7815e8e749e775d95c26f0e217744949285
- From:
- Omar Polo <op@omarpolo.com>
- Date:
typo; use the `l' variable not `len'
- Commit:
86693a33abd5e8c31530adb3045c9f4664d4d6c9
- From:
- Omar Polo <op@omarpolo.com>
- Date:
add a privsep crypto engine
Incorporate the OpenSMTPD' privsep crypto engine. The idea behind
it is to never load the certificate' private keys in a networked
process, instead they are loaded in a separate process (the `crypto'
one) which signs payloads on the behalf of the server processes.
This way, we greatly reduce the risk of leaking the certificate'
private key should the server process be compromised.
This currently compiles only on LibreSSL (portable fix is in the
way).